JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.46.236.89

104.46.236.89 was found in our database!

This IP was reported 212 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.46.236.89

Whois 104.46.236.89

IP Abuse Reports for 104.46.236.89:

This IP address has been reported a total of 212 times from 187 distinct sources. 104.46.236.89 was first reported on June 29th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-30 04:22:56 (6 hours ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-29 23:06:01 (11 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-29 22:08:01 (12 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇳🇱 oisecnet	2026-06-29 21:02:18 (14 hours ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-29. 538 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-29. 538 requests from this IP. show less	Brute-Force Web App Attack SSH
Anonymous	2026-06-29 19:35:10 (15 hours ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-06-29 19:33:51 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 104.46.236.89 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.46.236.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 15:33:45.383028 2026] [security2:error] [pid 29173:tid 29173] [client 104.46.236.89:60650] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.qualityelevatorcabs.com"] [uri "/wp-config.php"] [unique_id "akLImRQ7M_7cDFIfomnOTgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-29 19:32:16 (15 hours ago)	wp admin page access attempt ...	Hacking Web App Attack
🇵🇱 nakordoni.eu	2026-06-29 19:30:03 (15 hours ago)	Blocked by nakordoni.eu automated security: vulnerability scanner / probe attack. Jail: nakordoni-se ... show more Blocked by nakordoni.eu automated security: vulnerability scanner / probe attack. Jail: nakordoni-security-probe, 3 matches. ISP: Microsoft Corporation (JP), Usage: Data Center/Web Hosting/Transit. Prior AbuseIPDB score at ban time: 100/100. show less	Bad Web Bot Web App Attack
🇸🇪 EmK530	2026-06-29 19:25:56 (15 hours ago)	URL flagged by RegEx: /wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇨🇦 Anytech	2026-06-29 19:24:36 (15 hours ago)	Blocked by Conn-Monitor: Web scanning activity	Hacking Web App Attack
🇮🇹 mediarama.com	2026-06-29 19:24:24 (15 hours ago)	Banned by Fail2Ban	Web App Attack
🇺🇸 nasset	2026-06-29 19:17:42 (15 hours ago)	104.46.236.89 - - [29/Jun/2026:12:17:38 -0700] "GET /Rk41.php HTTP/1.1" 403 584 "-" "-" 104.46.236.8 ... show more 104.46.236.89 - - [29/Jun/2026:12:17:38 -0700] "GET /Rk41.php HTTP/1.1" 403 584 "-" "-" 104.46.236.89 - - [29/Jun/2026:12:17:39 -0700] "GET /fgd.php HTTP/1.1" 403 584 "-" "-" 104.46.236.89 - - [29/Jun/2026:12:17:40 -0700] "GET /wp-mail.php/wp-includes/admin.php HTTP/1.1" 403 584 "-" "-" 104.46.236.89 - - [29/Jun/2026:12:17:40 -0700] "GET /wp-admin/user/content.php HTTP/1.1" 403 584 "-" "-" 104.46.236.89 - - [29/Jun/2026:12:17:41 -0700] "GET /wp-content/plugins/wp.php HTTP/1.1" 403 584 "-" "-" ... show less	Bad Web Bot Web App Attack
🇩🇪 maxpower	2026-06-29 19:16:24 (15 hours ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.46.236.89 (JP/Japan/-): 1 in the last 360 ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 104.46.236.89 (JP/Japan/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 104.46.236.89 - - [29/Jun/2026:21:16:21 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 332 "-" "-" "-" host=mail.centromedicodiianni.it show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-29 19:12:41 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 104.46.236.89 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.46.236.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 15:12:37.309429 2026] [security2:error] [pid 6687:tid 6687] [client 104.46.236.89:14456] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.imagineyourphotos.com"] [uri "/wp-config.php"] [unique_id "akLDpX1X6dLFSqiL51GvzQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-29 19:08:58 (15 hours ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack

Showing 1 to 15 of 212 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 210.123.87.143

🇩🇪 91.230.22.23

🇭🇰 203.198.173.145

🇮🇩 202.72.211.34

🇳🇱 185.242.226.97

🇸🇬 139.99.74.35

🇺🇸 64.62.156.52

🇳🇱 46.29.25.86

🇳🇱 45.156.87.13

🇳🇱 45.148.10.151

🇺🇸 161.0.2.59

🇻🇳 113.186.78.58

🇷🇺 94.19.72.217

🇺🇸 84.32.48.98

🇺🇸 66.132.195.19

🇬🇧 45.133.173.181

🇺🇸 45.79.109.130

🇺🇸 216.25.89.83

🇧🇷 186.233.118.22

🇹🇷 185.81.152.136